CA2534637A1 - Methods and apparatus for routing of information depending on the traffic direction - Google Patents
Methods and apparatus for routing of information depending on the traffic direction Download PDFInfo
- Publication number
- CA2534637A1 CA2534637A1 CA002534637A CA2534637A CA2534637A1 CA 2534637 A1 CA2534637 A1 CA 2534637A1 CA 002534637 A CA002534637 A CA 002534637A CA 2534637 A CA2534637 A CA 2534637A CA 2534637 A1 CA2534637 A1 CA 2534637A1
- Authority
- CA
- Canada
- Prior art keywords
- node
- network
- network traffic
- traffic
- downstream
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4641—Virtual LANs, VLANs, e.g. virtual private networks [VPN]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
- H04L45/302—Route determination based on requested QoS
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0892—Network architectures or network communication protocols for network security for authentication of entities by using authentication-authorization-accounting [AAA] servers or protocols
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/60—Scheduling or organising the servicing of application requests, e.g. requests for application data transmissions using the analysis and optimisation of the required network resources
- H04L67/63—Routing a service request depending on the request content or context
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L69/00—Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
- H04L69/14—Multichannel or multilink protocols
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L69/00—Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
- H04L69/30—Definitions, standards or architectural aspects of layered protocol stacks
- H04L69/32—Architecture of open systems interconnection [OSI] 7-layer type protocol stacks, e.g. the interfaces between the data link level and the physical level
- H04L69/322—Intralayer communication protocols among peer entities or protocol data unit [PDU] definitions
- H04L69/329—Intralayer communication protocols among peer entities or protocol data unit [PDU] definitions in the application layer [OSI layer 7]
Abstract
In a network supporting virtual private network (VPN) connections, a first network node (132) maintains separate routing policy information (130) to forward network traffic depending on a direction of the network traffic.
Upstream routing policy information (130-1) at the first node identifies a second node (134) to forward upstream traffic received from at least a first client (110-1) communicating through the first node. Downstream routing policy information (130-2) at the first node identifies how to forward downstream network traffic received from another node to the first client. By preventing use of the downstream policy routing information by the first client to route upstream network traffic, the first node is able to forward traffic along a path that the network traffic otherwise would have not traveled. For example, network traffic communicated through the first node can be forced to travel through another network node through which it would have not otherwise have passed if the downstream policy information was available to route the network traffic.
Upstream routing policy information (130-1) at the first node identifies a second node (134) to forward upstream traffic received from at least a first client (110-1) communicating through the first node. Downstream routing policy information (130-2) at the first node identifies how to forward downstream network traffic received from another node to the first client. By preventing use of the downstream policy routing information by the first client to route upstream network traffic, the first node is able to forward traffic along a path that the network traffic otherwise would have not traveled. For example, network traffic communicated through the first node can be forced to travel through another network node through which it would have not otherwise have passed if the downstream policy information was available to route the network traffic.
Claims
Applications Claiming Priority (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US10/674,079 | 2003-09-29 | ||
US10/674,079 US7698456B2 (en) | 2003-09-29 | 2003-09-29 | Methods and apparatus to support routing of information |
PCT/US2004/031842 WO2005034441A1 (en) | 2003-09-29 | 2004-09-29 | Methods and apparatus for routing of information depending on the traffic direction |
Publications (2)
Publication Number | Publication Date |
---|---|
CA2534637A1 true CA2534637A1 (en) | 2005-04-14 |
CA2534637C CA2534637C (en) | 2010-12-14 |
Family
ID=34422051
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CA2534637A Expired - Fee Related CA2534637C (en) | 2003-09-29 | 2004-09-29 | Methods and apparatus for routing of information depending on the traffic direction |
Country Status (7)
Country | Link |
---|---|
US (1) | US7698456B2 (en) |
EP (1) | EP1678884B1 (en) |
CN (1) | CN100484077C (en) |
AT (1) | ATE427605T1 (en) |
CA (1) | CA2534637C (en) |
DE (1) | DE602004020371D1 (en) |
WO (1) | WO2005034441A1 (en) |
Families Citing this family (51)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7487232B1 (en) | 2000-09-13 | 2009-02-03 | Fortinet, Inc. | Switch management system and method |
US7272643B1 (en) * | 2000-09-13 | 2007-09-18 | Fortinet, Inc. | System and method for managing and provisioning virtual routers |
US7574495B1 (en) * | 2000-09-13 | 2009-08-11 | Fortinet, Inc. | System and method for managing interworking communications protocols |
US7203192B2 (en) * | 2002-06-04 | 2007-04-10 | Fortinet, Inc. | Network packet steering |
US7161904B2 (en) | 2002-06-04 | 2007-01-09 | Fortinet, Inc. | System and method for hierarchical metering in a virtual router based network switch |
US7096383B2 (en) | 2002-08-29 | 2006-08-22 | Cosine Communications, Inc. | System and method for virtual router failover in a network routing system |
US8590032B2 (en) | 2003-12-10 | 2013-11-19 | Aventail Llc | Rule-based routing to resources through a network |
US8661158B2 (en) | 2003-12-10 | 2014-02-25 | Aventail Llc | Smart tunneling to resources in a network |
US7450598B2 (en) * | 2003-12-15 | 2008-11-11 | At&T Intellectual Property I, L.P. | System and method to provision MPLS/VPN network |
CN100372340C (en) * | 2004-06-11 | 2008-02-27 | 华为技术有限公司 | Method for realizing virtual special network |
US7400611B2 (en) * | 2004-06-30 | 2008-07-15 | Lucent Technologies Inc. | Discovery of border gateway protocol (BGP) multi-protocol label switching (MPLS) virtual private networks (VPNs) |
US7623535B2 (en) * | 2004-09-09 | 2009-11-24 | Cisco Technology, Inc. | Routing protocol support for half duplex virtual routing and forwarding instance |
US8116307B1 (en) * | 2004-09-23 | 2012-02-14 | Juniper Networks, Inc. | Packet structure for mirrored traffic flow |
US7730521B1 (en) | 2004-09-23 | 2010-06-01 | Juniper Networks, Inc. | Authentication device initiated lawful intercept of network traffic |
US7499419B2 (en) | 2004-09-24 | 2009-03-03 | Fortinet, Inc. | Scalable IP-services enabled multicast forwarding with efficient resource utilization |
US7643434B2 (en) * | 2004-09-30 | 2010-01-05 | Hewlett-Packard Development Company, L.P. | Method and system for managing network nodes which communicate via connectivity services of a service provider |
WO2006044820A2 (en) | 2004-10-14 | 2006-04-27 | Aventail Corporation | Rule-based routing to resources through a network |
US7808904B2 (en) | 2004-11-18 | 2010-10-05 | Fortinet, Inc. | Method and apparatus for managing subscriber profiles |
US8213435B2 (en) | 2005-04-28 | 2012-07-03 | Cisco Technology, Inc. | Comprehensive model for VPLS |
US8194656B2 (en) * | 2005-04-28 | 2012-06-05 | Cisco Technology, Inc. | Metro ethernet network with scaled broadcast and service instance domains |
US9088669B2 (en) * | 2005-04-28 | 2015-07-21 | Cisco Technology, Inc. | Scalable system and method for DSL subscriber traffic over an Ethernet network |
US8094663B2 (en) * | 2005-05-31 | 2012-01-10 | Cisco Technology, Inc. | System and method for authentication of SP ethernet aggregation networks |
CA2636470A1 (en) * | 2006-01-10 | 2007-07-19 | Research In Motion Limited | Domain selection system and method operable in a network environment including ims |
CN100474854C (en) * | 2006-01-10 | 2009-04-01 | 华为技术有限公司 | Method and network system for selecting called continued network |
JP5132059B2 (en) * | 2006-01-30 | 2013-01-30 | 富士通株式会社 | Packet relay method and packet relay system |
US7657011B1 (en) | 2006-03-16 | 2010-02-02 | Juniper Networks, Inc. | Lawful intercept trigger support within service provider networks |
US8432894B2 (en) * | 2007-02-27 | 2013-04-30 | Alcatel Lucent | Asymmetrical forwarding in layer 3 IP VPNs |
US8102758B2 (en) * | 2007-03-05 | 2012-01-24 | Cisco Technology, Inc. | Analyzing virtual private network failures |
US8391185B2 (en) * | 2007-05-29 | 2013-03-05 | Cisco Technology, Inc. | Method to transport bidir PIM over a multiprotocol label switched network |
US8166205B2 (en) * | 2007-07-31 | 2012-04-24 | Cisco Technology, Inc. | Overlay transport virtualization |
CN102780624B (en) * | 2008-02-05 | 2016-02-03 | 华为技术有限公司 | A kind of method and apparatus setting up route |
US9203928B2 (en) | 2008-03-20 | 2015-12-01 | Callahan Cellular L.L.C. | Data storage and retrieval |
US8458285B2 (en) | 2008-03-20 | 2013-06-04 | Post Dahl Co. Limited Liability Company | Redundant data forwarding storage |
US7969981B2 (en) * | 2008-09-02 | 2011-06-28 | Cisco Technology, Inc. | System and method for multicasting in an internet protocol virtual private network environment |
US7940784B2 (en) * | 2008-11-03 | 2011-05-10 | At&T Intellectual Property I, L.P. | Methods and apparatus to advertise network routes to implement a hybrid network topology |
CN101795235B (en) * | 2010-03-18 | 2014-03-19 | 中兴通讯股份有限公司 | Route map treatment method and operator edge device |
US8694664B2 (en) | 2010-11-23 | 2014-04-08 | Cisco Technology, Inc. | Active-active multi-homing support for overlay transport protocol |
CN102487356B (en) * | 2010-12-03 | 2015-05-20 | 中兴通讯股份有限公司 | Route distribution method used for Hub-Spoke network and apparatus thereof |
US9064216B2 (en) * | 2012-06-06 | 2015-06-23 | Juniper Networks, Inc. | Identifying likely faulty components in a distributed system |
GB2510429A (en) | 2013-02-05 | 2014-08-06 | Ibm | Assessing response routes in a network |
US9548887B2 (en) | 2013-08-09 | 2017-01-17 | Cisco Technology, Inc. | Proactive creation of multicast state in an overlay transport network to achieve fast convergence on failover |
US9450862B2 (en) * | 2014-03-11 | 2016-09-20 | Futurewei Technologies, Inc. | Virtual private network migration and management in centrally controlled networks |
US9762545B2 (en) | 2014-11-03 | 2017-09-12 | Cisco Technology, Inc. | Proxy forwarding of local traffic by edge devices in a multi-homed overlay virtual private network |
CN110958272B (en) * | 2015-06-04 | 2021-10-15 | 华为技术有限公司 | Identity authentication method, identity authentication system and related equipment |
WO2017039494A1 (en) * | 2015-08-28 | 2017-03-09 | Telefonaktiebolaget Lm Ericsson (Publ) | Systems and methods for routing traffic originating from a communication device |
US10277514B2 (en) | 2016-07-21 | 2019-04-30 | Viasat, Inc. | Methods and systems for dynamic policy based traffic steering over multiple access networks |
CN107707478A (en) * | 2017-09-30 | 2018-02-16 | 迈普通信技术股份有限公司 | Data forwarding method and equipment |
CN109150725B (en) * | 2018-07-09 | 2021-07-16 | 网宿科技股份有限公司 | Traffic grooming method and server |
US20200092255A1 (en) * | 2018-09-19 | 2020-03-19 | Vmware, Inc. | Enhanced communication of service status information in a computing environment |
CN114286127B (en) * | 2022-03-08 | 2022-05-27 | 浙江微能科技有限公司 | Distributed artificial intelligence analysis method and device |
CN115499382B (en) * | 2022-08-12 | 2023-08-15 | 深蓝汽车科技有限公司 | Traffic scheduling method, device, equipment and medium based on Internet of vehicles |
Family Cites Families (22)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6009081A (en) * | 1997-09-03 | 1999-12-28 | Internap Network Services | Private network access point router for interconnecting among internet route providers |
US6339595B1 (en) * | 1997-12-23 | 2002-01-15 | Cisco Technology, Inc. | Peer-model support for virtual private networks with potentially overlapping addresses |
US6081508A (en) * | 1998-02-25 | 2000-06-27 | Indus River Networks, Inc. | Remote computer communication |
CA2239032A1 (en) * | 1998-05-28 | 1999-11-28 | Newbridge Networks Corporation | Operator directed routing of soft permanent virtual circuits in a connection-orientated network |
US6680940B1 (en) * | 1999-05-19 | 2004-01-20 | 3Com Corporation | System for transporting ethernet frames over very high speed digital subscriber lines |
US6724881B1 (en) * | 1999-05-27 | 2004-04-20 | Alcatel Canada Inc. | Optimization of connection paths in a communications network |
US6574224B1 (en) * | 1999-07-02 | 2003-06-03 | Nortel Networks Limited | Processing communication traffic |
US6680943B1 (en) * | 1999-10-01 | 2004-01-20 | Nortel Networks Limited | Establishing bi-directional communication sessions across a communications network |
US6683865B1 (en) * | 1999-10-15 | 2004-01-27 | Nokia Wireless Routers, Inc. | System for routing and switching in computer networks |
US6640239B1 (en) * | 1999-11-10 | 2003-10-28 | Garuda Network Corporation | Apparatus and method for intelligent scalable switching network |
JP3994614B2 (en) * | 2000-03-13 | 2007-10-24 | 株式会社日立製作所 | Packet switch, network monitoring system, and network monitoring method |
US7152115B2 (en) * | 2001-07-12 | 2006-12-19 | Nortel Networks Limited | Virtual private networks |
SE0200640D0 (en) | 2002-02-28 | 2002-02-28 | Ericsson Telefon Ab L M | Arrangement and method for routing in virtual private network |
US7116665B2 (en) * | 2002-06-04 | 2006-10-03 | Fortinet, Inc. | Methods and systems for a distributed provider edge |
US7340535B1 (en) * | 2002-06-04 | 2008-03-04 | Fortinet, Inc. | System and method for controlling routing in a virtual router system |
FR2844415B1 (en) * | 2002-09-05 | 2005-02-11 | At & T Corp | FIREWALL SYSTEM FOR INTERCONNECTING TWO IP NETWORKS MANAGED BY TWO DIFFERENT ADMINISTRATIVE ENTITIES |
WO2004056047A1 (en) * | 2002-12-13 | 2004-07-01 | Internap Network Services Corporation | Topology aware route control |
US7965717B2 (en) * | 2003-01-17 | 2011-06-21 | Nortel Networks Limited | Multi-staged services policing |
US7486659B1 (en) * | 2003-02-24 | 2009-02-03 | Nortel Networks Limited | Method and apparatus for exchanging routing information between virtual private network sites |
US7283529B2 (en) * | 2003-03-07 | 2007-10-16 | International Business Machines Corporation | Method and system for supporting a dedicated label switched path for a virtual private network over a label switched communication network |
US7313605B2 (en) * | 2003-07-03 | 2007-12-25 | At&T Corp. | Externally controlled reachability in virtual private networks |
US7499419B2 (en) * | 2004-09-24 | 2009-03-03 | Fortinet, Inc. | Scalable IP-services enabled multicast forwarding with efficient resource utilization |
-
2003
- 2003-09-29 US US10/674,079 patent/US7698456B2/en active Active
-
2004
- 2004-09-29 CA CA2534637A patent/CA2534637C/en not_active Expired - Fee Related
- 2004-09-29 WO PCT/US2004/031842 patent/WO2005034441A1/en active Application Filing
- 2004-09-29 AT AT04785209T patent/ATE427605T1/en not_active IP Right Cessation
- 2004-09-29 EP EP04785209A patent/EP1678884B1/en active Active
- 2004-09-29 CN CNB2004800203405A patent/CN100484077C/en not_active Expired - Fee Related
- 2004-09-29 DE DE602004020371T patent/DE602004020371D1/en active Active
Also Published As
Publication number | Publication date |
---|---|
EP1678884A1 (en) | 2006-07-12 |
CN1823506A (en) | 2006-08-23 |
CA2534637C (en) | 2010-12-14 |
DE602004020371D1 (en) | 2009-05-14 |
US7698456B2 (en) | 2010-04-13 |
US20050083955A1 (en) | 2005-04-21 |
EP1678884B1 (en) | 2009-04-01 |
WO2005034441A1 (en) | 2005-04-14 |
CN100484077C (en) | 2009-04-29 |
ATE427605T1 (en) | 2009-04-15 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CA2534637A1 (en) | Methods and apparatus for routing of information depending on the traffic direction | |
GB2424145A (en) | Adaptive source routing and packet processing | |
WO2005048106A3 (en) | Virtual private network with pseudo server | |
WO2002098046A3 (en) | System and method of virtual private network route target filtering | |
JP5805318B2 (en) | Bootstrapping fault detection sessions across P2MP tunnels | |
ATE415771T1 (en) | TWO-MODE FIREWALL | |
WO2008104963A3 (en) | Virtual connection route selection apparatus and techniques | |
GEP20074151B (en) | Flow-based selective reverse tunneling in wireless local area network (wlan)-cellular systems | |
WO2002054670A3 (en) | A scalable routing scheme for a multi-path interconnection fabric | |
EP1009191A3 (en) | Network path protection | |
ATE505884T1 (en) | VARIOUS METHODS AND DEVICES FOR A ROUTE SERVER | |
ATE335332T1 (en) | METHOD AND DEVICE FOR IMPROVING THE AVAILABILITY OF ROUTING SYSTEMS WITH MULTI-PATH EQUAL COSTS | |
WO2002045361A3 (en) | Method for communicating audio data in a packet switched network | |
EP1093265A3 (en) | System, device and method for distributing multicast routing information in a protocol independent multicast network | |
EP2009852A3 (en) | Router apparatus, route information distributing method and communications system | |
ATE297570T1 (en) | CUT-THROUGH CONNECTION AND PACKET FILTERING IN ONE COMPUTER SYSTEM | |
ATE303034T1 (en) | THREE-LAYER PRIVATE VIRTUAL NETWORKS (3-LAYER VPN) AND METHOD FOR PRODUCING IT | |
AUPR435501A0 (en) | Network security system | |
WO2007006845A3 (en) | Method for automatic route aggregation in a communication system | |
WO2005079503A3 (en) | System and method for end to end route control | |
CA2355315A1 (en) | Collecting per-packet billing data in a packet data service | |
SE0200640D0 (en) | Arrangement and method for routing in virtual private network | |
EP0948176A3 (en) | System for providing enhanced security for transactions transmitted through a distributed network | |
CA2408607A1 (en) | Method and system for sending information on an extranet | |
WO2008036362A3 (en) | Method and system for a consumer traffic monitoring and notification system |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
EEER | Examination request | ||
MKLA | Lapsed |
Effective date: 20181001 |